File config_adjust_legacy_crypto.h

Adjust legacy configuration configuration.

This is an internal header. Do not include it directly.

Automatically enable certain dependencies. Generally, MBEDTLS_xxx configurations need to be explicitly enabled by the user: enabling MBEDTLS_xxx_A but not MBEDTLS_xxx_B when A requires B results in a compilation error. However, we do automatically enable certain options in some circumstances. One case is if MBEDTLS_xxx_B is an internal option used to identify parts of a module that are used by other module, and we don’t want to make the symbol MBEDTLS_xxx_B part of the public API. Another case is if A didn’t depend on B in earlier versions, and we want to use B in A but we need to preserve backward compatibility with configurations that explicitly activate MBEDTLS_xxx_A but not MBEDTLS_xxx_B.

Defines

MBEDTLS_USE_PSA_CRYPTO

Make the X.509 and TLS libraries use PSA for cryptographic operations as much as possible, and enable new APIs for using keys handled by PSA Crypto.

Note

This is a legacy symbol which still exists for backward compatibility. Up to Mbed TLS 3.x, it was not enabled by default. Now it is always enabled, and it will eventually disappear from the code base. This is not part of the public API of TF-PSA-Crypto or of Mbed TLS >=4.0.